All Questions
Tagged with spring-websocket spring-security
114
questions
0
votes
3
answers
180
views
How to secure microservice websocket endpoint with Spring Cloud Gateway?
I have a microservice architecture based project, for which I have added Spring Cloud Gateway in front. My plan is to centralize security in the gateway. I have added OIDC and OAuth 2 for ...
- 73
0
votes
1
answer
74
views
Why is CSRF protection needed for connecting to websockets if Spring Security implements Same Origin Policy at server level?
As per Spring Security documentation, for websockets there is SOP implemented at the server level, as opposite to regular http where the browser implements SOP. However, Spring Security also requires ...
- 73
1
vote
0
answers
25
views
Not Receiving WebSocket Notifications in Spring Boot Application
I am currently working on a Spring Boot application that uses WebSockets for real-time communication. I have set up a notification system where notifications are sent to a specific user via WebSocket. ...
- 11
1
vote
1
answer
25
views
How to deny preSend() in ChannelInterceptor based on custom check via DB call
Within my WebSocketConfig class:
@Configuration
@EnableWebSocketMessageBroker
class WebsocketConfig(<...>)
I override:
@Bean(name = ["csrfChannelInterceptor"])
fun ...
- 1,029
0
votes
0
answers
41
views
WebSocket Chat Application in Spring Boot Not Receiving Messages in Postman
Problem Description:
I'm working on a WebSocket chat application using Spring Boot. The application uses STOMP over WebSocket for communication. When I test the WebSocket connection in Postman, I can ...
- 11
1
vote
2
answers
250
views
Websocket connection fails when adding Spring Boot Security
In a project, I have to implement a live chat between users. To do so I decided to use Websockets.
I currently have a frontend client written in React and a Spring boot backend written in Java.
The ...
- 21
0
votes
0
answers
38
views
Websocket request is ignored in Spring gateway security
I have a problem with connecting spring WebSocket(Using sockJs).
Currently, we are using a gateway service(written in spring boot) to redirect incoming requests to appropriate micro-services. But I ...
- 21
0
votes
0
answers
23
views
Access to XMLHttpRequest at 'http://localhost:8080/stomp-endpoint/info?t=1700316810332' from origin 'http://localhost:4200' has been blocked by CORS p
Im getting this error even I have allow all required permission
here my securityConfigue
@Configuration
@EnableWebSecurity
@EnableGlobalMethodSecurity(prePostEnabled = true)
@RequiredArgsConstructor
...
- 1
0
votes
0
answers
15
views
Can Spring ACL be integrated with Spring's WebSocket/STOMP for securing destinations?
Is it possible to integrate Spring ACL (Domain Object Security) with Spring's WebSocket/STOMP support?
While I suppose that method security will work as expected, I'm interested whether it is possible ...
1
vote
0
answers
29
views
how to get the userPrincipal saved in SecurityContext when websocket after connection
I now have a need to obtain the user information saved in SpringSecurity by the previous login request when the WebsocketSession connection of SpringBoot Websocket is established.
i have save the ...
- 11
0
votes
0
answers
132
views
Multi-tenant WebSocket microservice based on String
Disclaimer
Following code works, I would only ask about approach and grab some feedback about general idea, because it's my first time with Spring WebSockets + Spring Security for WebSockets.
In the ...
- 6,114
1
vote
0
answers
235
views
Connecting Flutter with Websocket Spring Security STOMP
I've been struggling for days trying to find a guide or something to connect my flutter app to the Websocket in my backend. It's all new to me... Nothing happens in the console of my backend but I ...
0
votes
0
answers
95
views
WebSocket with Spring security
I'm trying to permitAll the request made with websocket in spring security but everytime it goes to check if it has the jwt
this is my method in webSecurityconfigurerAdapter:
@Override
protected ...
- 119
1
vote
0
answers
362
views
How to correctly use maxSessionsPreventsLogin(true) in Spring STOMP websocket?
A have a Spring boot websocket server, which I reduced to a bare bone echo-server to reproduce my problem. My real application is a calculation engine (server) which users access via a JavaFx client. ...
- 149
1
vote
0
answers
200
views
Cannot reconnect/clear out timed out sessions in spring boot websocket server backed with Jdbc and Postgres using java websocket client
I have issues in having sessions properly deleted in my stomp websocket server, when clients are closed or after long inactivity. I attempted with and without spring session but could not achieve the ...
- 149